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START 



Create a manufacturing key pair with private exponent d, 
public exponent e, and public modulus n. Use the key pair 
to certify platform class keys 
402 



4 

Select a parameter Z such that 0 < Z < n 
404 



i 

Select a security parameter W such that 0 < W < n 

406 



T 

Compute a prime value P such that P=u*n+1 , for a random 
value u. The value u is selected such that u*n+1 is a prime 

number 
408 



T 

Generate a Platform Class Certificate (PCC) that includes 
cryptographic parameters e, n, u, P, Z, W, name of the 
device manufacturer, and other security relevant 
information. 
410 



T . 

Provide PCC to the manufactured device. 
412 



END 
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START 



TPM chooses a random number m (0 < m-Z < W) 
502 




The TPM to Choose a random 
number B such that 1 < B < n-1 
506 



The TPM to compute A = B e mod n 
508 



The TPM to compute m' = m*A 
mod n 
510 



The TPM to send m' to the Certifying Manufacturer 
514 



The Certifying Manufacturer to compute 
c' = m' d mod n 
516 



The Certifying Manufacturer to send the computed 
c' to the TPM 
5f8 



The TPM to compute c = c" * B" 1 mod n 
520 



Store the values of c and m in the TPM 
522 



Q END ^) 
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TPM receives a value W* from the 
device manufacturer 

602 
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Assurance parameter (AP) receive; 
TPM set i=1 §04 



Responder sends OUTPUTofROUND: 
Hash(v), Hash(y), Hash(z_y) 
Hash(z_x), Hash(z), Hash(t) and 
Hash(r) to the challenger 



TPM individually hashes the values v, y 
z_y, z_x, z. t and r t0 Produce hash 
values Hash(v), Hash(y), Hash(z_y), 
Hash(z_x), Hash(z), Hash(t) and 
Hash(r), respectively 
624 



TPM stores all hash values 
626 



TPM internally stores y. y* v, r, t or 
encrypts, y, y 6 , v, r and t with a storage 
key to place in external memory 
628 




TPM sends the values x 
and t to the challenger; go 
to 650 636 



TPM sends the values y, t, 
r to the challenger; go to 
650 640 



TPM sends the values z_x 
and z__y to the challenger; 
go to 650 
644 



TPM sends the values y, z, 
v to the challenger 
648 



i=AP? 
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f START ^ ) 
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TPM receives a value W* from the 
device manufacturer 
602 



Assurance parameter (AP receive); 
TPM seti="01" 
604 



TPM selects y, where 0<y<n 
606 



TPM selects x, where x=c*y mod n 
608 



TPM randomly selects value r 
670 



TPM computes v = h r mod P 
614 



TPM selects t, where 0<t<n 
616 



TPM computes z_x = x e - 1 mod n 
618 



TPM computes z_y = y**r - 1 mod n 
620 



TPM computes z = z_x + 1 mod n 
622 



TPM individually hashes the values v, y, 
z_y, z_x, z, t and r to produce hash 
values Hash(v), Hash(y), Hash(z_y), 
Hash(z_x), Hash(z), Hash(t) and 
Hash(r), respectively 
624 



TPM stores all hash values 
626 



TPM internally stores y, f, v, r, t or 
encrypts, y, /*, v, r and t with a storage 
key to place in external memory 
628 



Responder sends OUTPUTofROUND: 
Hash(v), Hash(y), Hash(z_y) 
Hash(z_x), Hash(z), Hash(t) and 
Hash(r) to the challenger 
630 
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TPM receives a choice from the 
challenger. 
632 




TPM sends the values x 
and t to the challenger; 
go to 650 
636 



TPM sends the values y, t, 
r to the challenger; 
go to 650 
640 



TPM sends the values z_x 
and z_y to the challenger; 
go to 650 
644 



TPM sends the values y, 
z, v to the challenger 
648 
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i:=l+1 
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TPM computes a value h using input 
from the challenger or at random. TPM 
computes k = h A m mod P and sends 
h,k to the challenger 
702 




Challenger sends an assurance 
parameter (AP); Challenger picks 
RAND and sends HASH(RAND); TPM 
sets i=1 704 



TPM selects y, where 0<y<n 
706 



TPM selects x, where x=c*y mod n 
70S 



TPM selects S independent values r J 
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TPM computes 
r = M +r_2 + ... + r_S 
712 



Send RUNNING HASH to Challenger 
734 



Receive RAND from Challenger 
736 



TPM Verifies RAND using 
HASH(RAND) 

738 
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ERROR 
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TPM computes v = h r mod P 
714 



TPM selects t, where 0<t<n 
716 



Compute CHOICES from 
HASH(RAND,RUNNING HASH) 
744 



TO END 
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i = 1 
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TPM computes z_x = x e 
718 



■ t mod n 



TPM computes z__y = y**r 
720 



t mod n 



TPM computes z = z x +t mod n 
722 

31 



TPM individually hashes the values v, y T 
z_y, z_x, z, t and r to produce hash 
values Hash(v), Hash(y), Hash(z_y). 
Hash(z_x), Hash(z), Hash(t) and 
Hash(r), respectively 
724 



TPM extends RUNNING HASH with 
above hash values stores these hash 
values 
726 



TPM internally stores y, y 6 , v, r t t or 
encrypts, y, y 6 , v, r and t with a storage 
key to place in external memory 
728 




TPM sends the values x 
and t to the challenger; go 
to 650 750 



TPM sends the values y, t, 
r to the challenger; go to 
650 754 



TPM sends the values z_x 
and z_y to the challenger; 
go to 750 
758 



TPM sends the values y, z, 
v to the challenger 
go to 750 
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Receibe AP from challenger 
802 



Initialize counter (i) (e.g., i=1) 
804 



Computer hash values for v, y, 
z-y, z-x, z, t, r 

806 



Use one or more of the hash 
values to produce a running 
hash value 
808 




Obtain CHOICE from running 
hash value 
814 



END 





i:=i+1 






812 









Figure 10 



